Thursday, April 17, 2025
Key Issues Overhauling the FAR Troops in South Korea Overland AI
Michael Duffey, nominee for under secretary of defense for acquisition and sustainment, weighed in on the future of the Pentagon's Cybersecurity Maturity Model Certification program ahead of his recent Senate Armed Services Committee confirmation hearing.
The Defense Department's plan to finalize the second rulemaking for the Cybersecurity Maturity Model Certification program by mid-2025 is starting to slip as the Pentagon works to meet requirements from President Trump’s Jan. 31 executive order on deregulation.
The Defense Department is providing new details on elements of its Cybersecurity Maturity Model Certification program through presentation slides on alignment with National Institute of Standards and Technology standards and a 2023 memo on equivalency with the General Services Administration’s FedRAMP program.
The Defense Department has announced Katie Arrington will serve as the Pentagon's chief information officer in an acting capacity, elevating a key voice in the Defense Department's Cybersecurity Maturity Model Certification program who joined the Office of the DOD CIO in February.
The National Defense Industrial Association argues implementing the Pentagon’s Cybersecurity Maturity Model Certification program will put a significant cost on companies that could be a barrier to entry for industry partners, as part of an annual report taking the pulse of defense firms.
Katie Arrington's return to the Pentagon shows a renewed interest in getting the Cybersecurity Maturity Model Certification program off the ground, according to contracting attorneys who highlighted the pressure companies are facing with official assessments now underway while a final rule to start the clock for requirements is still pending.
The hiring of Katie Arrington as the new DOD chief information security officer will bring a renewed focus on getting the Pentagon’s Cybersecurity Maturity Model Certification program fully realized, according to stakeholders who highlighted rulemaking efforts in the final stages and the official launch of the initiative.
Katie Arrington is returning to the Pentagon in a new role as chief information security officer at the Defense Department Office of the Chief Information Officer, marking a full-circle moment for the former acquisition official who served as the public face of the Cybersecurity Maturity Model Certification program during President Trump's first term.
A recent memorandum from senior Pentagon officials provides guidance on determining assessment levels and the waivers process under the Defense Department's Cybersecurity Maturity Model Certification program.
The Federal Acquisition Regulatory Council has unveiled a long-awaited proposed rule to standardize controlled unclassified information requirements for civilian agencies in the final days of the Biden administration that could be impacted by President Trump's regulatory freeze.
A coalition of industry groups who are part of the defense industrial base are pushing back against a proposed rule establishing requirements to disclose foreign obligations for commercial products under the Defense Department’s acquisition regulations.
The accreditation body behind the Pentagon’s Cybersecurity Maturity Model Certification program is in the process of responding to findings from a Defense Department inspector general report on efforts to authorize certified third-party assessment organizations, according to Cyber AB CEO Matthew Travis.
Fifty-eight percent of defense contractors are unprepared to meet the requirements for the Pentagon's Cybersecurity Maturity Model Certification program, according to a survey conducted by the Defense Department initiative's first authorized third-party assessment organization.
The Aerospace Industries Association is encouraging the National Institute of Standards and Technology to provide clarity on segmenting different components of an IT system, in a draft publication on advanced persistent threats used to establish requirements for the Pentagon's Cybersecurity Maturity Model Certification program.
A new audit from the Defense Department inspector general finds gaps in the Pentagon's process to authorize 11 certified third-party assessment organizations that applied to be part of the Cybersecurity Maturity Model Certification program.
The Fiscal Year 2025 National Defense Authorization Act, signed into law by President Biden on Christmas Eve, directs the Defense Department's chief digital and artificial intelligence officer to establish the DOD hackathon program and features a report due within 180 days from the Director of National Intelligence on "the implications of the ransomware threat to United States national security."
The accreditation body behind the Pentagon’s Cybersecurity Maturity Model Certification program has announced next steps as the first rulemaking to implement the DOD initiative goes into effect, including a start date for assessments and the release of the assessment process guide.
Stakeholders from the information technology and defense industrial base are urging the Cybersecurity and Infrastructure Security Agency to consider a wider range of industry needs as part of an effort to update the national cyber incident response plan for the first time in eight years.
Major changes to the Pentagon's Cybersecurity Maturity Model Certification program go into effect today through a long-awaited final rulemaking establishing the program in the Code of Federal Regulations.
The accreditation body behind the Pentagon's Cybersecurity Maturity Model Certification program is working to achieve several milestones ahead of the Dec. 16 effective date for the first rulemaking that will formally launch the initiative.